Error mapping SSO, getting 404 on localhost/Shibboleth.sso/Status

Andreas Granström andreas.granstrom at bizone.se
Wed Mar 2 05:32:17 EST 2016


Hi, I'm trying to get started with Shibboleth, using the configuration
provided by testshib. I've been fighting now with this issue for two days
and would be very grateful for some support.

My domain is https://www.vr-rut.se. The error I'm getting is an Error 404
Not Found for all requests under https://www.vr-rut.se/Shibboleth.sso ie.
/Status, /Metadata etc .The same result when I change to localhost or use
http insted of https.

I'm running a single web site on IIS 8.5 on a Windows 2012 R2 Server (64
bit, x64 based processor) in the Amazon cloud.

My feeling is that the error lies in the mapping of SSO but I can't see
what is wrong.

Attached you find my Shibboleth wanrning log files, as well as my
shibboleth2.xml configuration file.

Short about my installation and some log "highlights"
- The Shibboleth server is installed with default folders etc
- /lib64/isapi_shib.dll added to ISAPI filters and Allowed ISAPI/CGI
Restrictions on the web server level (I have also tried adding the filter
locally to the web site)
- Handlermapping *.sso => /lib64/isapi_shib-dll. Lies on top of the list

When I run shibd -check I get
"overall configuration is loadable, check console for non-fatal problems"

In the shibd.log: listener service started

In the windows event log
- The ISAPI filter seems to be loaded properly, I get Event 7701: Filter
initialized...
- The Shibboleth Daemon seems to be OK: Event 7700: shibd started
successfully

In the native_warn.log
2016-03-02 10:57:50 ERROR Shibboleth.Listener [6024] isapi_shib: socket
call (unknown) resulted in error (10054): Unknown error

When I try to load my content that is supposed to need authentification (
https://www.vr-rut.se/secure) I get redirected to testshib's site (which I
suppose is good) with error message "either you haven't uploaded your
metadata <https://www.testshib.org/metadata.html> yet or your SP's entityID
has not yet been properly configured. // SAML 2 SSO profile is not
configured for relying party https://www.vr-rut.se/shibboleth.
=> This is obviously correct, I have not uploaded metadata since I can't
access it on https://www.vr-rut.se/Shibboleth.sso/Metadata

Thanks in advance,

Andreas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20160302/2c47a77c/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: native_warn.log
Type: application/octet-stream
Size: 3470 bytes
Desc: not available
URL: <http://shibboleth.net/pipermail/users/attachments/20160302/2c47a77c/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: shibd_warn.log
Type: application/octet-stream
Size: 2890 bytes
Desc: not available
URL: <http://shibboleth.net/pipermail/users/attachments/20160302/2c47a77c/attachment-0001.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: shibboleth2.xml
Type: text/xml
Size: 3959 bytes
Desc: not available
URL: <http://shibboleth.net/pipermail/users/attachments/20160302/2c47a77c/attachment.xml>


More information about the users mailing list